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DETAILED ACTION 
Response to Amendment 

This office action is in response to amendment filed on 03/21/2005, Applicant amended 
Claims 1, 4, 16-17, 19, 22, 34-35, 38, 41, 48, and 54. The amendment filed on 03/21/2005 have 
been entered and made of record. Therefore, presently pending claims are 1-56. 

Response to Arguments 

Applicant's arguments filed 03/21/2005 have been fially considered but they are not 
persuasive because of following reasons. 

Applicant argued that there is no motivation to combine Matsumoto's 
encryption/decryption server with Jardin's system, which already fully provides encryption and 
decryption functionality. In response to applicant's argument that there is no suggestion to 
combine the references, the examiner recognizes that obviousness can only be established by 
combining or modifying the teachings of the prior art to produce the claimed invention where 
there is some teaching, suggestion, or motivation to do so found either in the references 
themselves or in the knowledge generally available to one of ordinary skill in the art. See In re 
Fine, 837 F.2d 1071, 5 USPQ2d 1596 (Fed. Cir. 1988)and In re Jones, 958 F.2d 347, 21 
USPQ2d 1941 (Fed. Cir. 1992). In this case, the knowledge is generally available to one of 
ordinary skill in the art. 

The applicant argues further that there would have been no motivation to include the 
teachings of Matsumoto with the teachings of Jardin, as the encryption/decryption provided by 
Matsumoto's server is not secure or trustworthy. The appUcant cites the title, "Speeding UP 
Secret Computation with Insecure Auxiliary Device." However the examiner cites the same title 
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with emphasis on Speeding Up Secret Computation with Insecure AuxiUary Device. Therefore 
the computation are still secret even if the auxiliary device is insecure. The applicant cited 
further the abstract on page 497. The examiner cites the same abstract the discloses, . .a smart 
card can efficiently execute secret computations, . Therefore, the auxiliary device executes 
secret computations. The applicant cites further paragraphs 1 and 2 on page 498. This is also 
not persuasive because the same paragraph says, "How a client can securely accelerate secret 
computations by using untrustworthy servers? This is the problem to be solved in this paper." 
Therefore the server may not be trusted by it is able to execute secret computations. 

The appUcant argues further that none of the cited references teach or suggest utilizing 
one engine (an online crypto engine) to perform encryption or decryption using cryptographic 
parameters established by another engine. This is not found persuasive. As disclosed by the 
applicant in the amendment (03/02/05), "Jardin already possesses processing blocks and 
associated functionality to perform encryption and decryption." Therefore the parameters 
attained during the handshake are used during encryption and decryption. The server of 
Matsumoto adds the computation power that may not be available at the handshake engine. 
Therefore the combination of Jardin and Matsumoto would result in a handshake engine that 
would have the extra computation power of Matsumoto. 

The examiner asserts that Jardin and Matsumoto do teach or suggest the subject matter 
broadly recited in independent Claims 1, 19, and 38. Dependent Claims 2-18, 20-37, and 39-56 
are also rejected at least by virtue of their dependency on independent claims and by other reason 
set forth in this office action. Accordingly, rejections for claims 1-56 are respectfully 
maintained. 
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Claim Rejections - 35 USC §103 
The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-56 are rejected under 35 U.S.C. 103(a) as being unpatentable over Jardin 
(6,681,327) in view of Matsumoto et al (cited by applicant on EDS 12/2/04). 

In reference to claims /, 19, and 38, Jardin discloses a method of servicing secure 
transactions in a network, comprising: establishing cryptographic parameters in a handshake 
engine (column 4 lines 35-58); servicing a transaction in a transaction server using unencrypted 
data (column 8 lines 5-17); wherein the system of Jardin decrypts the cUent packets before 
fulfilling the client request. 

Although Jardin discloses the decryption and encryption of communication packets 
between the server and the cUent (Fig. 3 steps 330-338) the encryption and decrption performed 
with the parameters established by the handshake engine (Fig. 4), Jardin does not disclose an 
inline crypto engine performing the earlier mentioned encryption and decryption. 

Matsumoto discloses a system wherein a server, inline crypto engine performs the 
function of the secret computation, encryption and decryption, on behalf of a client device; 
therefore the inline crypto engine having capability for performing at least one of encryption and 
decryption of data (page 497, Introduction, paragraph 3). Since Matsumoto performs encryption 
and decryption then it follows that Matsumoto has the capability of performing at least one of 
encryption and decryption. 
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At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to add the trustworthy server and delegate the encryption and decryption 
calculations to a separate server as in Matsumoto in the broker and server system of Jardin. One 
of ordinary skill in the art would have been motivated to do this because the system is a trusted 
network wherein the computing power of an auxiliary device may be implemented. 

In reference to claims 2, 20, and 39, Jardin discloses a system wherein the packets from 
the client are decrypted to provide unencrypted data for the transaction (Fig. 3). 

Matsumoto discloses the trustworthy server performing secret computations; decryption 
is a secret computation. 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to add the trustworthy server and delegate the encryption and decryption 
calculations to a separate server as in Matsumoto in the broker and server system of Jardin. One 
of ordinary skill in the art would have been motivated to do this because the system is a trusted 
network wherein the computing power of an auxiliary device may be implemented. 

In reference to claims 3, 27, 40, Jardin discloses a system wherein the packets from the 
cUent are encrypted to provide encrypted data for transmission (Fig, 3). 

Matsumoto discloses the trustworthy server performing secret computations; encryption 
is a secret computation. 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to add the trustworthy server and delegate the encryption and decryption 
calculations to a separate server as in Matsumoto in the broker and server system of Jardin. One 



Application/Control Number: 09/874,8 1 3 Page 6 

Art Unit: 2135 

of ordinary skill in the art would have been motivated to do this because the system is a trusted 
network wherein the computing power of an auxiliary device may be implemented. 

In reference to claims 4, 22, and 41, Jardin discloses a system wherein the establishing 
step includes handing off a network connection from the transaction server to the handshake 
engine such that the handshake engine can establish the cryptographic parameters with a client 
coupled to the network (Fig. 3 parts 340, 342, 344, 346). 

In reference to claims 5, 25, and 42, Jardin discloses a system wherein the servicing step 
includes handing off a network connection from the handshake engine to the transaction server 
(column 6 lines 38-55). 

In reference to claims 6, 24, and 43, Jardin discloses a system wherein the establishing 
step includes performing a Secure Sockets Layer (SSL) handshake procedure (column 6 lines 45- 
47). 

In reference to claims 7, 25, and 44, Jardin discloses a system wherein the establishing 
step includes performing a Transport Layer Security handshake procedure (column 6 lines 45-47 
in combination with column 7 lines 40-55). The SSL handshake procedure is performed at the 
Transport layer. 

In reference to claims 8-1 1, 26-29, 37, 45-48, 54, wherein the transaction is returning at 
least one of a data file and streaming data. Jardin discloses executing the cHent transaction and 
sending a response (column 8 lines 1-10). Data files, streaming data, audio and video data, 
hypertext, structured data files, and data taken from a form are all sent in the form of packets and 
therefore are included in the form of data that is disclosed by Jardin. 
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In reference to claims 12, 30, 49, Jardin discloses a system wherein the cryptographic 
parameters include at least one cryptographic key (column 5 lines 30-65). 

In reference to claims 13, 31, 50, Jardin discloses a system wherein the at least one 
cryptographic key includes at least one of a public key and a private key (column 5 lines 45-50). 

In reference to claims 14, 32, 51, further comprising: notifying the inline crypto engine of 
the cryptographic parameters. 

Jardin does not expressly disclose sending the cryptographic parameters to an auxiliary 
device that is specifically used for encryption. 

However Matsumoto discloses sending the cryptographic parameters, secrets, to a 
trustworthy server (page 497 Introduction paragraph 3). 

At the time the invention was made, it would have been obvious to a person of ordinary 
skill in the art to add a trusted server as disclosed by Matsumoto and send the cryptographic 
parameters to the server to perform encryption as in the system taught by Matsumoto to perform 
the encryption and decryption disclosed by the system of Jardin. One of ordinary skill in the art 
would have been motivated to do this because the system would use the computational power of 
the auxiUary device. 

In reference to claims 15, 33, 52, Jardin discloses a system receiving a request to 
establish the cryptographic parameters; and responsive to receiving the request, performing the 
estabUshing step (Fig. 2). 

In reference to claims 16 and 34, Jardin discloses a system further comprising: receiving 
the transmitted data from the network by the inline crypto engine (part 430 Fig. 4). 
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In reference to claims 17 and 35, Jardin discloses a system further comprising: 
transmitting the transmitted data to the network by the inline crypto engine (part 338 Fig. 3). 

In reference to claims 18, 36, and 53, Jardin discloses a system wherein the unencrypted 
data is a request to perform the transaction (parts 430-434 Fig. 4). 

In reference to claim 55, wherein the at least one transaction server, the at least one inline 
handshake engine, and the at least one inline crypto engine operate concurrently. 

Jardin discloses a system with the transaction server and the crypto engine (Fig. 1). 
Although Jardin does not expressly disclose them operating concurrently, at the time the 
invention was made, it would have been obvious to a person of ordinary skill in the art to operate 
the inline crypto engine and the inline handshake engine concurrently. One of ordinary skill in 
the art would have been motivated to do this because the servers are separate, each with its own 
processor and therefore do not require scheduling to use a shared processor for computation. 

In reference to claim 56, wherein the at least one transaction server, the at least one inline 
handshake engine, and the at least one inline crypto engine operate asynchronously. 

Jardin discloses a system with the transaction server, handshake engine, and the crypto 
engine (Fig. 1). Although Jardin does not expressly disclose the devices operating 
asynchronously, at the time the invention was made, it would have been obvious to a person of 
ordinary skill in the art to operate the inline crypto engine and the inline handshake engine 
concurrently. One of ordinary skill in the art would have been motivated to do this because the 
servers are separate, each with its own processor and therefore do not require scheduling to use a 
shared processor for computation. 
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Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time poUcy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1 .136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Paula W. KUmach whose telephone number is (571) 272-3854. 
The examiner can normally be reached on Mon to Thr 9:30 a.m to 5:30 p.m. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on (571) 272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or PubUc PAIR. Status information for unpublished 
appUcations is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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